Skip to content

Commit

Permalink
Set explicit permissions for GitHub Actions workflows
Browse files Browse the repository at this point in the history
  • Loading branch information
BenjaminPelletier committed Jan 15, 2025
1 parent f746ba5 commit d3babfc
Show file tree
Hide file tree
Showing 4 changed files with 10 additions and 0 deletions.
2 changes: 2 additions & 0 deletions .github/workflows/ci.yml
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,8 @@ on:
jobs:
hygiene-tests:
name: Repository hygiene
permissions:
contents: read
runs-on: ubuntu-latest
steps:
- name: Job information
Expand Down
2 changes: 2 additions & 0 deletions .github/workflows/dev-checks.yml
Original file line number Diff line number Diff line change
@@ -1,4 +1,6 @@
name: Developers environment checks
permissions:
contents: read
on:
pull_request: # All
push:
Expand Down
2 changes: 2 additions & 0 deletions .github/workflows/image-publish.yml
Original file line number Diff line number Diff line change
Expand Up @@ -14,6 +14,8 @@ on:
# be the one found in scripts/tag.sh.
# [1] https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#filter-pattern-cheat-sheet
- "interuss/monitoring/v[0-9]+.[0-9]+.[0-9]+-?*"
permissions:
contents: read
jobs:
docker-hub-push:
name: Build and Push to Docker Hub
Expand Down
4 changes: 4 additions & 0 deletions .github/workflows/monitoring-test.yml
Original file line number Diff line number Diff line change
@@ -1,5 +1,9 @@
name: 'Run a monitoring test (re-usable workflow)'

# https://docs.github.com/en/actions/writing-workflows/workflow-syntax-for-github-actions#permissions
permissions:
contents: read

on:
workflow_call:
inputs:
Expand Down

0 comments on commit d3babfc

Please sign in to comment.